McAfee: Beware of ObamaCare Phishing Scams

Security firm McAfee warned Tuesday that hackers are likely to take advantage of the rollout of ObamaCare exchanges this week by launching phishing attacks aimed at stealing personal information.

Phishing attacks are designed to dupe users into revealing credit-card numbers or other confidential data by delivering phony links or attachments in emails and messages on social media sites.

“I can say with a high degree of certainty that they will come. We live in a world where people look at compelling events and look to do something malicious. This is just the nature of the beast,” said Gary Davis, vice president of global consumer marketing at McAfee, which is owned by Intel (INTC).

Like natural disasters or other major events, consumers searching for information about the new health-care exchanges are likely to be willing to disclose personal information in the coming weeks.

Given the confusion over the rollout, consumers may also be more easily fooled by deceptive messages claiming to be from the government or health-care providers.

“They’re getting very good at what they do,” said Davis. “It’s important that consumers take a cautionary note before they do anything. Step back and explore a way to verify this is legitimate and the source.”

The security firm lists a number of specific ways users can defend against phishing attacks.

Install patches on your operating system as soon as possible to prevent hackers from exploiting known security vulnerabilities.

Download the most up-to-date version of your Internet browser to deploy the latest security measures

Double check the domain name of a website to ensure it’s legitimate. Look for “https:” in the URL to confirm SSL encryption is being used

Don’t click on links in unsolicited email and ignore messages that call users to action by saying “your account will be terminated.” Rely on the phone instead and be sure to use numbers verified outside of the e-mail.

Be extra vigilant about downloading software and e-mail attachments from the Internet like free screen savers that may contain keyloggers or screen scrapers that can steal information.